Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Cisco VPN static-to-dynamic

Posted on 2013-01-17
7
Medium Priority
?
435 Views
Last Modified: 2013-04-26
Hi,
On my PIX v.8 I have already site to site vpns configured, and I have too remote access vpn configured, what I need to configure now is another vpn with a remote site with dynamic ip.
The remote site has Cisco 877 Router, on it, I already configured the crypto stuff and access list, but I don't know how to configure this new vpn on the PIX adding it to the others already configured.
Any help will be appreciated.
0
Comment
Question by:arefone
7 Comments
 
LVL 99

Expert Comment

by:John Hurst
ID: 38787036
Site to site normally requires static IP addressing. There are two approaches:

1. Use DynDNS to provide a static address even though your remote site changes.  

http://dyn.com/dns/

2. If the remote IP address changes infrequently (not more frequently that once a year) then just use the address and change when needed. I use this approach for my home office site to site tunnels.

.... Thinkpads_User
0
 
LVL 18

Accepted Solution

by:
fgasimzade earned 2000 total points
ID: 38787090
0
 
LVL 1

Author Comment

by:arefone
ID: 38787148
I tried already that doc, it did not work, when I try to issue the command "tunnel-group DefaultL2LGroup general-attributes
   authentication-server-group none" on the pix, it tells that no "authentication-server-group none" option available.
0
New Tabletop Appliances Blow Competitors Away!

WatchGuard’s new T15, T35 and T55 tabletop UTMs provide the highest-performing security inspection in their class, allowing users at small offices, home offices and distributed enterprises to experience blazing-fast Internet speeds without sacrificing enterprise-grade security.

 
LVL 18

Expert Comment

by:fgasimzade
ID: 38787159
Just dont use this option. The configuration described there is 100% working
0
 
LVL 1

Author Comment

by:arefone
ID: 38787200
Sorry Fgasimzade, can you post me the configs I need to implement on my pix without having all the stuff I don't need so it helps better?
0
 
LVL 1

Expert Comment

by:Xvidalx
ID: 38788596
yessss.. configs and logs... will help
0
 
LVL 1

Author Closing Comment

by:arefone
ID: 39115112
with "tunnel-group DefaultL2LGroup ipsec-attributes" command on PIX it worked.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Suggested Courses

783 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question